Lucene search
K

61 matches found

CVE
CVE
added 2023/11/14 7:5 p.m.166 views

CVE-2023-28388

CVE-2023-28388 affects Intel® Chipset Device Software prior to version 10.1.19444.8378. Affected component vulnerability is an uncontrolled search path element that could let an authenticated, local attacker escalate privileges. Intel’s advisory (Intel-SA-00870) confirms the vulnerability and rec...

7.8CVSS7.7AI score0.00191EPSS
Exploits0References1Affected Software1
Intel
Intel
added 2023/11/14 12:0 a.m.156 views

Intel® Chipset Device Software Advisory

Summary: A potential security vulnerability in some Intel® Chipset Device Software may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2023-28388 Description: Uncontrolled search path element in some...

7.8CVSS7.7AI score0.00191EPSS
Exploits0
CNNVD
CNNVD
added 2023/11/14 12:0 a.m.4 views

Intel Chipset Device Software Security Vulnerability

Intel Chipset Device Software is a chipset firmware update utility from Intel Corporation USA. A security vulnerability exists in Intel Chipset Device Software. An attacker exploiting this vulnerability could cause an escalation of privileges...

7.8CVSS7AI score0.00191EPSS
Exploits0References2
Citrix
Citrix
added 2023/04/24 12:0 a.m.148 views

PVS boot time message "Attempting to set IP address on Boot NIC.......complete after 51s."

Target devices show a boot time message "Attempting to set IP address on Boot NIC.......complete after 51s." This message was not observed in earlier versions of PVS target device software like PVS 1912...

7AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2022/09/08 8:15 a.m.3 views

CVE-2022-36403

Untrusted search path vulnerability in the installer of Device Software Manager prior to Ver.2.20.3.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

7.8CVSS7.1AI score0.0021EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2022/09/08 8:15 a.m.3 views

CVE-2022-36403

Untrusted search path vulnerability in the installer of Device Software Manager prior to Ver.2.20.3.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

7.8CVSS5.8AI score0.0021EPSS
Exploits0References2
NVD
NVD
added 2022/09/08 8:15 a.m.14 views

CVE-2022-36403

Untrusted search path vulnerability in the installer of Device Software Manager prior to Ver.2.20.3.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

7.8CVSS0.0021EPSS
Exploits0References2
Prion
Prion
added 2022/09/08 8:15 a.m.11 views

Design/Logic Flaw

Untrusted search path vulnerability in the installer of Device Software Manager prior to Ver.2.20.3.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

4.4CVSS7.6AI score0.0021EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/09/08 7:10 a.m.65 views

CVE-2022-36403

The CVE-2022-36403 issue affects Ricoh Device Software Manager installer up to version 2.20.3.0. The root cause is an untrusted search path that may cause insecure loading of DLLs (CWE-427), potentially allowing arbitrary code execution with the installer user’s privileges. Public documents consi...

7.8CVSS7.7AI score0.0021EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/09/08 7:10 a.m.17 views

CVE-2022-36403

Untrusted search path vulnerability in the installer of Device Software Manager prior to Ver.2.20.3.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

7.9AI score0.0021EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2022/09/07 12:0 a.m.8 views

The vulnerability of the Device Software Manager installer, related to an uncontrolled search path, allows a hacker to load arbitrary files.

The vulnerability of the Device Software Manager installer is related to an uncontrolled element in the search process. Exploiting this vulnerability could allow a hacker to load arbitrary files...

7.8CVSS5.6AI score0.0021EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/08/29 12:0 a.m.9 views

Ricoh Device Software Manager 代码问题漏洞

Ricoh Device Software Manager is a device software manager from Ricoh Japan. A security vulnerability exists in Ricoh Device Software Manager, which arises from the possibility that the installer may load unsafe dynamic link libraries...

7.8CVSS6.8AI score0.0021EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/08/29 12:0 a.m.11 views

PT-2022-4667 · Unknown · Device Software Manager

Name of the Vulnerable Software and Affected Versions: Device Software Manager versions prior to 2.20.3.0 Description: The issue is related to an untrusted search path vulnerability in the installer of Device Software Manager. This vulnerability can be exploited by an attacker to gain privileges...

7.8CVSS7.6AI score0.0021EPSS
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2022/08/22 12:0 a.m.6 views

The vulnerability of the command-line interface (CLI) of Zyxel network device software allows a hacker to trigger a service failure.

The vulnerability of the command-line interface CLI of Zyxel network device software implementations is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to cause service failures...

6.1CVSS7.4AI score0.05805EPSS
Exploits4References7
Github Security Blog
Github Security Blog
added 2022/02/24 12:0 a.m.19 views

Insecure Storage of Sensitive Information in Microweber

Microweber prior to version 1.3 does not strip images of EXIF data, exposing information about users' locations, device hardware, and device software...

9.1CVSS2.6AI score0.01327EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2022/01/14 6:15 p.m.12 views

CVE-2021-24046

A logic flaw in Ray-Ban® Stories device software allowed some parameters like video capture duration limit to be modified through the Facebook View application. This issue affected versions of device software before 2107460.6810.0...

5.3CVSS0.00698EPSS
Exploits0References1
OSV
OSV
added 2022/01/14 6:15 p.m.3 views

CVE-2021-24046

A logic flaw in Ray-Ban® Stories device software allowed some parameters like video capture duration limit to be modified through the Facebook View application. This issue affected versions of device software before 2107460.6810.0...

5.3CVSS5.8AI score0.00698EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/01/14 6:10 p.m.15 views

CVE-2021-24046

A logic flaw in Ray-Ban® Stories device software allowed some parameters like video capture duration limit to be modified through the Facebook View application. This issue affected versions of device software before 2107460.6810.0...

5.5AI score0.00698EPSS
Exploits0References1
CVE
CVE
added 2022/01/14 6:10 p.m.40 views

CVE-2021-24046

CVE-2021-24046 describes a logic flaw in Ray-Ban Stories device software that allows certain parameters, notably the video capture duration limit, to be modified through the Facebook View application. Affected are device software versions prior to 2107460.6810.0. The connected sources consistentl...

5.3CVSS5.2AI score0.00698EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/01/14 12:0 a.m.5 views

Ray-Ban Stories安全漏洞

Ray-Ban Stories is a smart glasses from ray-ban. A security vulnerability exists in Ray-Ban Stories that allows some parameters, such as video capture duration limits, to be modified via the Facebook View application. This issue affects device software versions prior to 2107460.6810.0...

5.3CVSS5.7AI score0.00698EPSS
Exploits0References2
Rows per page
Query Builder